Cyber Security Awareness and Vulnerabilities Blog

  • Home
  • Cyber Security Awareness and Vulnerabilities Blog
RSS

17

Apr

How to Phish with Core Impact

The Impacts 18.1 release last month brought a ton of streamlined enhancements and new capabilities to the client-side vector in general, and phishing in particular. To be clear on terms, I consider phishing to be inducing a target to follow a link presented…

Read More

10

Apr

Identity Management at RSA: Why it Will Only Continue to Grow

When first reading this article, the thought of, “Well it’s about time, identity has a place at RSA” quickly came to mind. Even if you don’t agree with everything listed, some items mentioned are mere table stakes for a new way of thinking about…

Read More

02

Apr

The Latest Exploits Shipped to Core Impact 18.1

Here is the summary for all of the exploits and updates shipped to Impact 18.1 since its release (on Feb 14th): 14 Updates overall 3 Remote Exploits 5 Client-Side Exploits 3 Local exploits 3 Product Updates   Here is the list of published updates: Remote Exploits: Symantec Messaging Gateway performRestore OS Command…

Read More

20

Mar

Introducing the Visual Identity Suite

We all know that there are clear problems in the industry when it comes to role design and entitlement certification. Problems like: Lack of visibility: Most entitlements and user access logs are kept in spreadsheets, whether on their machine or in an online tool,…

Read More

19

Mar

RSA2018 SF Map v-1200px.png

How to Make Friends and Find Your Way at RSA 2018

Are you hitting the road and heading to RSA 2018 in San Francisco this April? We know this event is huge and it can be a tad bit overwhelming trying to start a conversation with perfect strangers. So we’re here to help. We’ve…

Read More

06

Mar

Upcoming "Hunting Crypto Secrets in SAP Systems" Talk at Troopers IT Conference

Securing Enterprise Business Applications such as SAP systems poses a large set of challenges. Most companies have been passing through and maturing on how to adopt cryptography and encryption on these systems. However, this opens the door for new challenges. The protection of…

Read More

20

Feb

Customizable Reports with Core Impact

Today we're sharing how to use the customizable reports functionality available in Core Impact. In order to generate such agents, we'll use the "Network Report Generation" wizard. From the list of available reports, filter for type "spreadsheet" and select "Network Host Report". When clicking on "Duplicate"…

Read More

14

Feb

New Release - Core Impact 18.1

  It is our mission to continue to produce the most effective and efficient security products and services on the market. Today, I am happy to announce the release of Core Impact 18.1, our market leading penetration testing solution – where we put the…

Read More

06

Feb

PowerShell with Core Impact

The next set of features shown in this quick video demonstrates the PowerShell integration that's available on Windows agents. The first step is to use the "Get installed PowerShell version" in order to verify that the target system has the proper PowerShell environment ready to…

Read More

31

Jan

Identity 101: Creating Secure Password

We all hate passwords. Either you can't remember them, or you re-use the same one over and over to avoid forgetting it. Trying to come up with new passwords is a never-ending battle against human memory versus the potential for someone to guess the…

Read More